mirror of
https://github.com/DarkFlippers/unleashed-firmware.git
synced 2024-12-26 23:05:05 +03:00
d92b0a82cc
"A long time ago in a galaxy far, far away...." we started NFC subsystem refactoring. Starring: - @gornekich - NFC refactoring project lead, architect, senior developer - @gsurkov - architect, senior developer - @RebornedBrain - senior developer Supporting roles: - @skotopes, @DrZlo13, @hedger - general architecture advisors, code review - @Astrrra, @doomwastaken, @Hellitron, @ImagineVagon333 - quality assurance Special thanks: @bettse, @pcunning, @nxv, @noproto, @AloneLiberty and everyone else who has been helping us all this time and contributing valuable knowledges, ideas and source code.
328 lines
12 KiB
Markdown
328 lines
12 KiB
Markdown
# NFC Flipper File Formats
|
|
|
|
## UID + Header (General format)
|
|
|
|
### Example
|
|
|
|
Filetype: Flipper NFC device
|
|
Version: 4
|
|
# Device type can be ISO14443-3A, ISO14443-3B, ISO14443-4A, NTAG/Ultralight, Mifare Classic, Mifare DESFire
|
|
Device type: ISO14443-4A
|
|
# UID is common for all formats
|
|
UID: 04 48 6A 32 33 58 80
|
|
-------------------------
|
|
(Device-specific data)
|
|
|
|
### Description
|
|
|
|
This file format is used to store the device type and the UID of an NFC device. It does not store any internal data, so it is only used as a header for other formats.
|
|
|
|
Version differences:
|
|
|
|
1. Initial version, deprecated
|
|
2. LSB ATQA (e.g. 4400 instead of 0044)
|
|
3. MSB ATQA (current version)
|
|
4. Replace UID device type with ISO14443-3A
|
|
|
|
## ISO14443-3A
|
|
|
|
Filetype: Flipper NFC device
|
|
Version: 4
|
|
# Device type can be ISO14443-3A, ISO14443-3B, ISO14443-4A, NTAG/Ultralight, Mifare Classic, Mifare DESFire
|
|
Device type: ISO14443-3A
|
|
# UID is common for all formats
|
|
UID: 34 19 6D 41 14 56 E6
|
|
# ISO14443-3A specific data
|
|
ATQA: 00 44
|
|
SAK: 00
|
|
|
|
### Description
|
|
|
|
This file format is used to store the UID, SAK and ATQA of a ISO14443-3A device.
|
|
UID must be either 4 or 7 bytes long. ATQA is 2 bytes long. SAK is 1 byte long.
|
|
|
|
Version differences:
|
|
None, there are no versions yet.
|
|
|
|
## ISO14443-3B
|
|
|
|
Filetype: Flipper NFC device
|
|
Version: 4
|
|
# Device type can be ISO14443-3A, ISO14443-3B, ISO14443-4A, NTAG/Ultralight, Mifare Classic, Mifare DESFire
|
|
Device type: ISO14443-3B
|
|
# UID is common for all formats
|
|
UID: 30 1D B3 28
|
|
# ISO14443-3B specific data
|
|
Application data: 00 12 34 FF
|
|
Protocol info: 11 81 E1
|
|
|
|
### Description
|
|
|
|
This file format is used to store the UID, Application data and Protocol info of a ISO14443-3B device.
|
|
UID must be 4 bytes long. Application data is 4 bytes long. Protocol info is 3 bytes long.
|
|
|
|
Version differences:
|
|
None, there are no versions yet.
|
|
|
|
## ISO14443-4A
|
|
|
|
### Example
|
|
|
|
Filetype: Flipper NFC device
|
|
Version: 4
|
|
# Device type can be ISO14443-3A, ISO14443-3B, ISO14443-4A, NTAG/Ultralight, Mifare Classic, Mifare DESFire
|
|
Device type: ISO14443-4A
|
|
# UID is common for all formats
|
|
UID: 04 48 6A 32 33 58 80
|
|
# ISO14443-3A specific data
|
|
ATQA: 03 44
|
|
SAK: 20
|
|
# ISO14443-4A specific data
|
|
ATS: 06 75 77 81 02 80
|
|
|
|
### Description
|
|
|
|
This file format is used to store the UID, SAK and ATQA of a ISO14443-4A device. It also stores the Answer to Select (ATS) data of the card.
|
|
ATS must be no less than 5 bytes long.
|
|
|
|
Version differences:
|
|
None, there are no versions yet.
|
|
|
|
## NTAG/Ultralight
|
|
|
|
### Example
|
|
|
|
Filetype: Flipper NFC device
|
|
Version: 4
|
|
# Device type can be ISO14443-3A, ISO14443-3B, ISO14443-4A, NTAG/Ultralight, Mifare Classic, Mifare DESFire
|
|
Device type: NTAG/Ultralight
|
|
# UID is common for all formats
|
|
UID: 04 85 90 54 12 98 23
|
|
# ISO14443-3A specific data
|
|
ATQA: 00 44
|
|
SAK: 00
|
|
# NTAG/Ultralight specific data
|
|
Data format version: 2
|
|
NTAG/Ultralight type: NTAG216
|
|
Signature: 1B 84 EB 70 BD 4C BD 1B 1D E4 98 0B 18 58 BD 7C 72 85 B4 E4 7B 38 8E 96 CF 88 6B EE A3 43 AD 90
|
|
Mifare version: 00 04 04 02 01 00 13 03
|
|
Counter 0: 0
|
|
Tearing 0: 00
|
|
Counter 1: 0
|
|
Tearing 1: 00
|
|
Counter 2: 0
|
|
Tearing 2: 00
|
|
Pages total: 231
|
|
Pages read: 231
|
|
Page 0: 04 85 92 9B
|
|
Page 1: 8A A0 61 81
|
|
Page 2: CA 48 0F 00
|
|
...
|
|
Page 224: 00 00 00 00
|
|
Page 225: 00 00 00 00
|
|
Page 226: 00 00 7F BD
|
|
Page 227: 04 00 00 E2
|
|
Page 228: 00 05 00 00
|
|
Page 229: 00 00 00 00
|
|
Page 230: 00 00 00 00
|
|
Failed authentication attempts: 0
|
|
|
|
### Description
|
|
|
|
This file format is used to store the UID, SAK and ATQA of a Mifare Ultralight/NTAG device. It also stores the internal data of the card, the signature, the version, and the counters. The data is stored in pages, just like on the card itself.
|
|
|
|
The "NTAG/Ultralight type" field contains the concrete device type. It must be one of: Mifare Ultralight, Mifare Ultralight 11, Mifare Ultralight 21, NTAG203, NTAG213, NTAG215, NTAG216, NTAG I2C 1K, NTAG I2C 2K, NTAG I2C Plus 1K, NTAG I2C Plus 2K.
|
|
|
|
The "Signature" field contains the reply of the tag to the READ_SIG command. More on that can be found here: <https://www.nxp.com/docs/en/data-sheet/MF0ULX1.pdf> (page 31)
|
|
|
|
The "Mifare version" field is not related to the file format version but to the Mifare Ultralight version. It contains the response of the tag to the GET_VERSION command. More on that can be found here: <https://www.nxp.com/docs/en/data-sheet/MF0ULX1.pdf> (page 21)
|
|
|
|
Other fields are the direct representation of the card's internal state. Learn more about them in the same datasheet.
|
|
|
|
Version differences:
|
|
|
|
1. Mifare Ultralight type is stored directly in Device type field
|
|
2. Current version, Mifare Ultralight type is stored in the same-named field
|
|
|
|
## Mifare Classic
|
|
|
|
### Example
|
|
|
|
Filetype: Flipper NFC device
|
|
Version: 4
|
|
# Device type can be ISO14443-3A, ISO14443-3B, ISO14443-4A, NTAG/Ultralight, Mifare Classic, Mifare DESFire
|
|
Device type: Mifare Classic
|
|
# UID is common for all formats
|
|
UID: BA E2 7C 9D
|
|
# ISO14443-3A specific data
|
|
ATQA: 00 02
|
|
SAK: 18
|
|
# Mifare Classic specific data
|
|
Mifare Classic type: 4K
|
|
Data format version: 2
|
|
# Mifare Classic blocks, '??' means unknown data
|
|
Block 0: BA E2 7C 9D B9 18 02 00 46 44 53 37 30 56 30 31
|
|
Block 1: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 2: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 3: FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF
|
|
Block 4: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 5: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 6: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 7: FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF
|
|
...
|
|
Block 238: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 239: FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF
|
|
Block 240: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 241: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 242: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 243: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 244: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 245: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 246: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 247: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 248: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 249: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 250: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 251: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 252: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 253: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 254: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
Block 255: FF FF FF FF FF FF FF 07 80 69 FF FF FF FF FF FF
|
|
|
|
### Description
|
|
|
|
This file format is used to store the NFC-A and Mifare Classic specific data of a Mifare Classic card. Aside from the NFC-A data, it stores the card type (1K/4K) and the internal data of the card. The data is stored in blocks, there is no sector grouping. If the block's data is unknown, it is represented by '??'. Otherwise, the data is represented as a hex string.
|
|
|
|
Version differences:
|
|
|
|
1. Initial version, has Key A and Key B masks instead of marking unknown data with '??'.
|
|
|
|
Example:
|
|
|
|
...
|
|
Data format version: 1
|
|
# Key map is the bit mask indicating valid key in each sector
|
|
Key A map: 000000000000FFFF
|
|
Key B map: 000000000000FFFF
|
|
# Mifare Classic blocks
|
|
...
|
|
|
|
2. Current version
|
|
|
|
## Mifare DESFire
|
|
|
|
### Example
|
|
|
|
Filetype: Flipper NFC device
|
|
Version: 4
|
|
# Device type can be ISO14443-3A, ISO14443-3B, ISO14443-4A, NTAG/Ultralight, Mifare Classic, Mifare DESFire
|
|
Device type: Mifare DESFire
|
|
# UID is common for all formats
|
|
UID: 04 2F 19 0A CD 66 80
|
|
# ISO14443-3A specific data
|
|
ATQA: 03 44
|
|
SAK: 20
|
|
# ISO14443-4A specific data
|
|
ATS: 06 75 77 81 02 80
|
|
# Mifare DESFire specific data
|
|
PICC Version: 04 01 01 12 00 1A 05 04 01 01 02 01 1A 05 04 2F 19 0A CD 66 80 CE ED D4 51 80 31 19
|
|
PICC Free Memory: 7520
|
|
PICC Change Key ID: 00
|
|
PICC Config Changeable: true
|
|
PICC Free Create Delete: true
|
|
PICC Free Directory List: true
|
|
PICC Key Changeable: true
|
|
PICC Max Keys: 01
|
|
PICC Key 0 Version: 00
|
|
Application Count: 1
|
|
Application IDs: 56 34 12
|
|
Application 563412 Change Key ID: 00
|
|
Application 563412 Config Changeable: true
|
|
Application 563412 Free Create Delete: true
|
|
Application 563412 Free Directory List: true
|
|
Application 563412 Key Changeable: true
|
|
Application 563412 Max Keys: 0E
|
|
Application 563412 Key 0 Version: 00
|
|
Application 563412 Key 1 Version: 00
|
|
Application 563412 Key 2 Version: 00
|
|
Application 563412 Key 3 Version: 00
|
|
Application 563412 Key 4 Version: 00
|
|
Application 563412 Key 5 Version: 00
|
|
Application 563412 Key 6 Version: 00
|
|
Application 563412 Key 7 Version: 00
|
|
Application 563412 Key 8 Version: 00
|
|
Application 563412 Key 9 Version: 00
|
|
Application 563412 Key 10 Version: 00
|
|
Application 563412 Key 11 Version: 00
|
|
Application 563412 Key 12 Version: 00
|
|
Application 563412 Key 13 Version: 00
|
|
Application 563412 File IDs: 01
|
|
Application 563412 File 1 Type: 00
|
|
Application 563412 File 1 Communication Settings: 00
|
|
Application 563412 File 1 Access Rights: EE EE
|
|
Application 563412 File 1 Size: 256
|
|
Application 563412 File 1: 13 37 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|
|
|
|
### Description
|
|
|
|
This file format is used to store the NFC-A and Mifare DESFire specific data of a Mifare DESFire card. Aside from the NFC-A data, it stores the card type (DESFire) and the internal data of the card. The data is stored per-application, and per-file. Here, the card was written using those pm3 commands:
|
|
|
|
hf mfdes createapp --aid 123456 --fid 2345 --dfname astra
|
|
hf mfdes createfile --aid 123456 --fid 01 --isofid 0001 --size 000100
|
|
hf mfdes write --aid 123456 --fid 01 -d 1337
|
|
|
|
Version differences:
|
|
None, there are no versions yet.
|
|
|
|
## Mifare Classic Dictionary
|
|
|
|
### Example
|
|
|
|
# Key dictionary from https://github.com/ikarus23/MifareClassicTool.git
|
|
|
|
# More well known keys!
|
|
# Standard keys
|
|
FFFFFFFFFFFF
|
|
A0A1A2A3A4A5
|
|
D3F7D3F7D3F7
|
|
000000000000
|
|
|
|
# Keys from mfoc
|
|
B0B1B2B3B4B5
|
|
4D3A99C351DD
|
|
1A982C7E459A
|
|
AABBCCDDEEFF
|
|
714C5C886E97
|
|
587EE5F9350F
|
|
A0478CC39091
|
|
533CB6C723F6
|
|
8FD0A4F256E9
|
|
...
|
|
|
|
### Description
|
|
|
|
This file contains a list of Mifare Classic keys. Each key is represented as a hex string. Lines starting with '#' are ignored as comments. Blank lines are ignored as well.
|
|
|
|
## EMV resources
|
|
|
|
### Example
|
|
|
|
Filetype: Flipper EMV resources
|
|
Version: 1
|
|
# EMV currency code: currency name
|
|
0997: USN
|
|
0994: XSU
|
|
0990: CLF
|
|
0986: BRL
|
|
0985: PLN
|
|
0984: BOV
|
|
...
|
|
|
|
### Description
|
|
|
|
This file stores a list of EMV currency codes, country codes, or AIDs and their names. Each line contains a hex value and a name separated by a colon and a space.
|
|
|
|
Version differences:
|
|
|
|
1. Initial version
|